package com.google.antranking.utils;




import java.io.IOException;
import java.io.InputStream;
import java.net.InetAddress;
import java.net.InetSocketAddress;
import java.net.Socket;
import java.net.UnknownHostException;
import java.security.KeyStore;

import javax.net.ssl.KeyManager;
import javax.net.ssl.KeyManagerFactory;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSocket;
import javax.net.ssl.TrustManager;
import javax.net.ssl.TrustManagerFactory;

import org.apache.http.conn.ConnectTimeoutException;
import org.apache.http.conn.scheme.LayeredSocketFactory;
import org.apache.http.conn.scheme.SocketFactory;
import org.apache.http.params.HttpConnectionParams;
import org.apache.http.params.HttpParams;
  

public class EasySSLSocketFactory implements SocketFactory, LayeredSocketFactory {  
  
    private SSLContext sslcontext = null;  
  
    private InputStream keystore;
    
    private String keypass;
    
    public EasySSLSocketFactory(InputStream keystore, String keypass){
    	this.keypass = keypass;
    	this.keystore = keystore;
    }
    
    
    private static SSLContext createEasySSLContext( InputStream keystore, String keyStorePwd) throws IOException {  
        try {  
        	
        	
        		
        	
    		KeyStore keyStore   = KeyStore.getInstance("BKS");
    		
    		char[] keystorepass = keyStorePwd.toCharArray();		
    		keyStore.load(keystore, keystorepass);
    		

    		KeyManagerFactory keyManagetFactory = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());
    		
    		keyManagetFactory.init(keyStore, keystorepass);
    		KeyManager[] keyManager = keyManagetFactory.getKeyManagers();
        	
    		TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
			trustManagerFactory.init(keyStore);
			TrustManager[] trustManager = trustManagerFactory.getTrustManagers();
    		
            SSLContext context = SSLContext.getInstance("TLS");  
           
            context.init(keyManager, trustManager, null);  
            //context.init(keyManager, new TrustManager[]{new EasyX509TrustManager(null)},null); 
         
            return context;  
        
        
        } catch (Exception e) {  
        	e.printStackTrace();
            throw new IOException(e.getMessage());  
        }  
    }  
  
    private SSLContext getSSLContext() throws IOException {  
        if (this.sslcontext == null) {  
            this.sslcontext = createEasySSLContext(this.keystore,this.keypass);  
        }  
        return this.sslcontext;  
    }  
  
    /** 
     * @see org.apache.http.conn.scheme.SocketFactory#connectSocket(java.net.Socket, java.lang.String, int, 
     *      java.net.InetAddress, int, org.apache.http.params.HttpParams) 
     */  
    public Socket connectSocket(Socket sock, String host, int port, InetAddress localAddress, int localPort,  
            HttpParams params) throws IOException, UnknownHostException, ConnectTimeoutException {  
        
    	int connTimeout = HttpConnectionParams.getConnectionTimeout(params);  
        int soTimeout = HttpConnectionParams.getSoTimeout(params);  
        InetSocketAddress remoteAddress = new InetSocketAddress(host, port);  
        SSLSocket sslsock = (SSLSocket) ((sock != null) ? sock : createSocket());  
  
        if ((localAddress != null) || (localPort > 0)) {  
            // we need to bind explicitly  
            if (localPort < 0) {  
                localPort = 0; // indicates "any"  
            }  
            InetSocketAddress isa = new InetSocketAddress(localAddress, localPort);  
            sslsock.bind(isa);  
        }  
  
        sslsock.connect(remoteAddress, connTimeout);  
        sslsock.setSoTimeout(soTimeout);  
        return sslsock;  
  
    }  
  
    /** 
     * @see org.apache.http.conn.scheme.SocketFactory#createSocket() 
     */  
    public Socket createSocket() throws IOException {  
        return getSSLContext().getSocketFactory().createSocket();  
    }  
  
    /** 
     * @see org.apache.http.conn.scheme.SocketFactory#isSecure(java.net.Socket) 
     */  
    public boolean isSecure(Socket socket) throws IllegalArgumentException {  
        return true;  
    }  
  
    /** 
     * @see org.apache.http.conn.scheme.LayeredSocketFactory#createSocket(java.net.Socket, java.lang.String, int, 
     *      boolean) 
     */  
    public Socket createSocket(Socket socket, String host, int port, boolean autoClose) throws IOException,  
            UnknownHostException {  
    	//return socket;
    	//return getSSLContext().getSocketFactory().createSocket();
    	return getSSLContext().getSocketFactory().createSocket(socket, host, port, autoClose);  
    }  
  
    // -------------------------------------------------------------------  
    // javadoc in org.apache.http.conn.scheme.SocketFactory says :  
    // Both Object.equals() and Object.hashCode() must be overridden  
    // for the correct operation of some connection managers  
    // -------------------------------------------------------------------  
  
    public boolean equals(Object obj) {  
        return ((obj != null) && obj.getClass().equals(EasySSLSocketFactory.class));  
    }  
  
    public int hashCode() {  
        return EasySSLSocketFactory.class.hashCode();  
    }  
  
}  
